866 matches found
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
CVE-2025-21013
CVE-2025-21013 describes an improper access control vulnerability in SemSensorManager on Galaxy Watch devices. The issue allows local attackers to access sensitive user data, specifically outdoor exercise and sleep time information. Affected component is SemSensorManager; underlying cause is impr...
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Aug-2025 Release 1 prior to Release 1, which stems from improper access control of...
PT-2025-32104 · Samsung · Galaxy Watch
Name of the Vulnerable Software and Affected Versions: Galaxy Watch versions prior to SMR Aug-2025 Release 1 Description: Improper access control in SemSensorManager allows local attackers to access sensitive information related to outdoor exercise and sleep time. Recommendations: Update Galaxy...
SleepWalk: Exploiting Context Switching and Residual Power for Physical Side-Channel Attacks
Context switching is utilized by operating systems to change the execution context between application programs. It involves saving and restoring the states of multiple registers and performing a pipeline flush to remove any pre-fetched instructions, leading to a higher instantaneous power...
DEBIAN-CVE-2025-38392
In the Linux kernel, the following vulnerability has been resolved: idpf: convert control queue mutex to a spinlock With VIRTCHNL2CAPMACFILTER enabled, the following warning is generated on module load: 324.701677 BUG: sleeping function called from invalid context at kernel/locking/mutex.c:578...
UBUNTU-CVE-2025-38374
In the Linux kernel, the following vulnerability has been resolved: optee: ffa: fix sleep in atomic context The OP-TEE driver registers the function notifcallback for FF-A notifications. However, this function is called in an atomic context leading to errors like this when processing asynchronous...
CVE-2025-38374
In the Linux kernel, the following vulnerability has been resolved: optee: ffa: fix sleep in atomic context The OP-TEE driver registers the function notifcallback for FF-A notifications. However, this function is called in an atomic context leading to errors like this when processing asynchronous...
CVE-2025-38374 optee: ffa: fix sleep in atomic context
In the Linux kernel, the following vulnerability has been resolved: optee: ffa: fix sleep in atomic context The OP-TEE driver registers the function notifcallback for FF-A notifications. However, this function is called in an atomic context leading to errors like this when processing asynchronous...
CVE-2025-38374
CVE-2025-38374 – Linux kernel (OP-TEE FF-A): The issue arises because OP-TEE’s notif_callback() for FF-A notifications was executed in an atomic context, leading to a sleep and a kernel warning. The fix is to move notification processing to a non-atomic context by using a work queue. Affected des...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the use of mutex locks in an atomic context that could lead to sleep...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the fact that FF-A notification callbacks called in an atomic context may cause sleep...
Google AI "Big Sleep" Stops Exploitation of Critical SQLite Vulnerability Before Hackers Act
Google on Tuesday revealed that its large language model LLM-assisted vulnerability discovery framework identified a security flaw in the SQLite open-source database engine before it could have been exploited in the wild. The vulnerability, tracked as CVE-2025-6965 CVSS score: 7.2, is a memory...
AZL-72590 CVE-2025-38335 affecting package kernel for versions less than 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...
CVE-2025-38335
CVE-2025-38335 concerns a Linux kernel vulnerability in the gpio_keys driver related to PREEMPT_RT. The description states that when PREEMPT_RT is enabled, gpio_keys_irq_timer() can run in hard IRQ context while input_event() uses a spin_lock, which is incompatible with hard IRQ. This leads to a ...
CVE-2025-38335
In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...
CVE-2025-38335 Input: gpio-keys - fix a sleep while atomic with PREEMPT_RT
In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a sleep issue under PREEMPTRT in the gpio-keys driver, which could lead to a deadlock...